On Wed, May 5, 2010 at 8:30 PM, Matthew Toseland <toad at amphibian.dyndns.org> wrote: > Maybe we should always check signatures after generating them if the seclevel > is sufficiently paranoid? > > http://news.bbc.co.uk/1/hi/technology/8637845.stm
Probably not worthwhile except in very exotic circumstances; if the attacker has the level of hardware access required to pull this trick off, you're generally screwed anyway.
